Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-31570

libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file.

Published

2024-09-19T17:15:12.623

Last Modified

2024-09-25T14:57:47.337

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses
  • Type: Primary
    CWE-787
  • Type: Secondary
    CWE-121
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application freeimage_project freeimage ≤ 3.18.0 Yes
References